221.114.224.117

Basic Info

City: unknown

Region: unknown

Country: Japan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.114.224.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48533
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;221.114.224.117.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021802 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 13:34:35 CST 2025
;; MSG SIZE  rcvd: 108

Host info

117.224.114.221.in-addr.arpa domain name pointer 221x114x224x117.ap221.ftth.ucom.ne.jp.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.224.114.221.in-addr.arpa	name = 221x114x224x117.ap221.ftth.ucom.ne.jp.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.177.172.54	attack	Jul 30 00:55:48 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:55:51 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:55:54 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:55:58 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:56:01 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 ...	2020-07-30 16:09:50
83.194.118.209	attackspambots	SSH break in attempt ...	2020-07-30 16:34:55
145.239.154.240	attackbots	Jul 29 21:30:03 web9 sshd\[6508\]: Invalid user huangmd from 145.239.154.240 Jul 29 21:30:03 web9 sshd\[6508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.154.240 Jul 29 21:30:05 web9 sshd\[6508\]: Failed password for invalid user huangmd from 145.239.154.240 port 46964 ssh2 Jul 29 21:34:10 web9 sshd\[7020\]: Invalid user fanshikui from 145.239.154.240 Jul 29 21:34:10 web9 sshd\[7020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.154.240	2020-07-30 16:14:08
78.110.158.254	attack	2020-07-30T11:21:03.471853lavrinenko.info sshd[4288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.110.158.254 2020-07-30T11:21:03.464746lavrinenko.info sshd[4288]: Invalid user designer from 78.110.158.254 port 51922 2020-07-30T11:21:05.312828lavrinenko.info sshd[4288]: Failed password for invalid user designer from 78.110.158.254 port 51922 ssh2 2020-07-30T11:25:12.535134lavrinenko.info sshd[4390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.110.158.254 user=mysql 2020-07-30T11:25:14.894818lavrinenko.info sshd[4390]: Failed password for mysql from 78.110.158.254 port 33800 ssh2 ...	2020-07-30 16:31:33
119.29.154.221	attackspambots	Jul 30 08:25:15 vserver sshd\[18206\]: Invalid user lili from 119.29.154.221Jul 30 08:25:17 vserver sshd\[18206\]: Failed password for invalid user lili from 119.29.154.221 port 53144 ssh2Jul 30 08:30:17 vserver sshd\[18236\]: Invalid user itcweb from 119.29.154.221Jul 30 08:30:19 vserver sshd\[18236\]: Failed password for invalid user itcweb from 119.29.154.221 port 45640 ssh2 ...	2020-07-30 16:36:19
196.171.39.7	spamattack	They took over somehow my domain. I believe they have some buggy DNS servers that allow it do such thing. While they do have my domain for a little while - they are using my company's real email address to send tons of emails to nonexistent email recipients (hotmail, yahoo, google, etc. (public mail providers)). After a little while I get back tons of NDRs in my SMTP gateways and in corresponding user mailbox. Now the tricky part - I have to be on time when NDRs come in my SMTP gateway - because I have to remove them as soon as possible or there will be another loop and I my SMTP gateway will banned to global spam lists (p.s. It is banned now)	2020-07-30 16:00:45
218.92.0.251	attack	2020-07-30T08:05:45.238257vps1033 sshd[9823]: Failed password for root from 218.92.0.251 port 3393 ssh2 2020-07-30T08:05:48.807441vps1033 sshd[9823]: Failed password for root from 218.92.0.251 port 3393 ssh2 2020-07-30T08:05:52.590285vps1033 sshd[9823]: Failed password for root from 218.92.0.251 port 3393 ssh2 2020-07-30T08:05:55.118237vps1033 sshd[9823]: Failed password for root from 218.92.0.251 port 3393 ssh2 2020-07-30T08:05:58.558295vps1033 sshd[9823]: Failed password for root from 218.92.0.251 port 3393 ssh2 ...	2020-07-30 16:10:43
1.34.144.128	attackspambots	Brute-force attempt banned	2020-07-30 16:31:06
51.77.200.24	attackbotsspam	Jul 30 10:02:03 pve1 sshd[4224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.24 Jul 30 10:02:05 pve1 sshd[4224]: Failed password for invalid user zhongyan from 51.77.200.24 port 59244 ssh2 ...	2020-07-30 16:14:28
64.227.97.195	attack	Jul 30 07:56:53 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=64.227.97.195 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=58941 DF PROTO=TCP SPT=36682 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Jul 30 07:56:54 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=64.227.97.195 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=58942 DF PROTO=TCP SPT=36682 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Jul 30 07:56:56 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=64.227.97.195 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=58943 DF PROTO=TCP SPT=36682 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0	2020-07-30 16:17:12
165.227.25.239	attack	2020-07-30T14:26:34.761795hostname sshd[128928]: Invalid user shiyanlou from 165.227.25.239 port 60090 ...	2020-07-30 16:33:15
120.52.139.130	attackspambots	Invalid user jht from 120.52.139.130 port 50062	2020-07-30 16:03:59
149.202.160.188	attackbots	2020-07-30T02:13:33.654165linuxbox-skyline sshd[99170]: Invalid user swathi from 149.202.160.188 port 43767 ...	2020-07-30 16:28:16
123.207.19.105	attack	Jul 29 23:49:35 NPSTNNYC01T sshd[25122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.19.105 Jul 29 23:49:37 NPSTNNYC01T sshd[25122]: Failed password for invalid user cymtv from 123.207.19.105 port 40470 ssh2 Jul 29 23:51:10 NPSTNNYC01T sshd[25240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.19.105 ...	2020-07-30 16:32:55
206.189.124.254	attackspambots	SSH Brute Force	2020-07-30 16:22:11

Recently Reported IPs

114.8.197.123	135.62.104.46	238.135.23.24	222.24.236.203
40.92.91.95	44.50.197.34	14.192.115.217	165.204.174.1
13.89.0.149	252.148.178.210	140.26.219.174	253.77.57.214
192.173.226.98	221.192.206.146	84.137.253.49	24.237.142.65
146.145.48.52	167.133.21.236	12.173.191.72	181.231.89.97